CVE-2021-27291

Debian Bug report logs - #985574 pygments: CVE-2021-27291 Package: src:pygments; Maintainer for src:pygments is Piotr Ożarowski <piotr@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 20 Mar 2021 09:39:04 UTC Severity: important Tags: security, upstream Found in versions pygments/231+ ...

Ben Caller discovered that Pygments, a syntax highlighting package written in Python 3, used regular expressions which could result in denial of service For the stable distribution (buster), this problem has been fixed in version 231+dfsg-1+deb10u2 We recommend that you upgrade your pygments packages For the detailed security status of pygment ...

Multiple security issues were found in MediaWiki, a website engine for collaborative work, which could result in incomplete page/blocking protection, denial of service or cross-site scripting For the stable distribution (buster), these problems have been fixed in version 1:13114-1~deb10u1 We recommend that you upgrade your mediawiki packages F ...

In pygments 11+, fixed in 274, the lexers used to parse programming languages rely heavily on regular expressions Some of the regular expressions have exponential or cubic worst-case complexity and are vulnerable to ReDoS By crafting malicious input, an attacker can cause a denial of service (CVE-2021-27291) ...

In pygments 11+, fixed in 274, the lexers used to parse programming languages rely heavily on regular expressions Some of the regular expressions have exponential or cubic worst-case complexity and are vulnerable to ReDoS By crafting malicious input, an attacker can cause a denial of service (CVE-2021-27291) ...

In pygments 11+, fixed in 274, the lexers used to parse programming languages rely heavily on regular expressions Some of the regular expressions have exponential or cubic worst-case complexity and are vulnerable to regular expression denial of service (ReDoS) By crafting malicious input, an attacker can cause a denial of service ...